URLhaus Database

You are currently viewing the URLhaus database entry for http://020dz.net/wp-includes/Documentation/uexc3qka1peegs/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	719063
URL:	http://020dz.net/wp-includes/Documentation/uexc3qka1peegs/
URL Status:	Offline
Host:	020dz.net
Date added:	2020-10-19 17:41:28 UTC
Last online:	2020-10-26 20:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-10-19 17:42:19 UTC to scipadmin2013{at}189[dot]cn)
Takedown time:	7 days, 2 hours, 23 minutes (down since 2020-10-26 20:06:00 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-10-21	REP_PO_10212020EX.doc	doc	2613c4d78a8daef9a9fc119072017d73ea4651234942d2d2c57683baae0e86d3	28.33%	Heodo
2020-10-21	V_E23M9J0CM.doc	doc	52caf1a070aa97f41dee32688e691efd22f50efe87a8f77d4a36a28281c19136	32.08%	Heodo
2020-10-21	BPJ_100120_LXX_102120.doc	doc	f762fa2e19b39567f9550fec095e6bf1f7655fee2bfa11190f293736f74f57b5	n/a	Heodo
2020-10-21	REP_ADR_100120_DIU_102120.doc	doc	11c8cdc867668b0fe262189aaf49519ffbf3391fa8303856b0a08a52562cd611	25.81%	Heodo
2020-10-21	PO_10212020EX.doc	doc	fe15277e67a0613b3d95b606ce70df9644eda15dbf383f2523d089ba239fead9	n/a	Heodo
2020-10-21	Z_4BWTBFZSC3V8IJ2J.doc	doc	c9005b11db864adc5c5393451fc9bb77fc67fab38c00ad806790a4ac7245c80a	27.42%	Heodo
2020-10-21	DOC_28068367.doc	doc	87beff4cbd449ccd79a749854304ec24ebf96ade1f9f2b29e2c386a593e182a9	31.37%	Heodo
2020-10-21	BAL_34940659.doc	doc	ade7ee034ccce02004ebcf42088a9174448fe99ee93da5cc8c7a34fc42b5d7d2	30.19%	Heodo
2020-10-21	FILE_15036237.doc	doc	e88388bec3164944678627db062b753e76b6f7f710a9fabc43dfe69e7df2f366	27.42%	Heodo
2020-10-21	REP_AUI_100120_KBD_102120.doc	doc	71e55ad14abd213d5627b65f8f045b2c9337c629a556868c692376c331d9fa58	26.23%	Heodo
2020-10-21	56164291.doc	doc	efc52b61116de71a3b3191b7bf3d79f9152dd3d3fa3d34889a4f11ef178d9e68	50.00%	Heodo
2020-10-21	BAL_A22DZ31W0EIY6P.doc	doc	e6335af6ecbbb9d05de5332fb55088045d8066babe6f9fb4cb05e7097ce44046	50.00%	Heodo
2020-10-21	REP_43128857.doc	doc	453c4b4cf3a5fda7d48005d020112c06ebcbcf478ead4ebcfacf25576781bb2a	n/a	Heodo
2020-10-21	DOC_072756331.doc	doc	fcd4efaae00015d956a28f77cd06f9b327aab1c3f6a7604660cd4ce3e638e1ed	49.15%	Heodo
2020-10-21	VM2250690839TB.doc	doc	f6ca28aa0ec1ee28ce246d787de062e5b78554ec2cfc62fbf00db085c177b074	53.85%	Heodo
2020-10-21	KHU_MNV_100120_LLL_102120.doc	doc	85a0100950655dd48b3789ac075bbca0e9b4d1ba0e1a4fbc29ee363cc23da4f9	50.00%	Heodo
2020-10-21	PO_10212020EX.doc	doc	cda1bf170e4f678baeac39af84d506bde1d33ed9ccbc753273718f5bd2a503e0	53.45%	Heodo
2020-10-21	DOC_41841260.doc	doc	71410da7fd254423681e9a41961a03bac9777fff1882cee09b6ddb785b38b923	49.15%	Heodo
2020-10-21	08707472332163191694884.doc	doc	fe1e5c66a4990cc515e5925db68def9f29f1893d9c6d3fa6b47e05f5c5f618dd	46.55%	Heodo
2020-10-21	IE8373521118NE.doc	doc	56074bdd23c71846faa6ab17e8fc8485ce763ae329af8573a9e877dd6ec6513c	49.18%	Heodo
2020-10-21	FILE_PO_10212020EX.doc	doc	230fc1531e7d113ebf83ea8dad03120965c293da08a2ae82305ac9cb61efe7b8	47.46%	Heodo
2020-10-21	W_RKR_100120_CSP_102120.doc	doc	a22d83a786eb7f5a04facaabb04117ecb5f8cdf09fcbb8405c0a70c97a51f225	43.40%	Heodo
2020-10-21	PO_10212020EX.doc	doc	8ea38c51f8926ffa9ee61be53fc7ee3e4f968f2c7683bbc3b9320d14a2443067	43.33%	Heodo
2020-10-21	DOC_QYI_100120_FWF_102120.doc	doc	b0e434b1de80d97737347fcf4a28a60aad479593c4dde9c9611296cef08185e8	43.33%	Heodo
2020-10-21	REP_JOM_100120_KTS_102120.doc	doc	afcfe7ff49c2df7f47347c4c49d64ac3f027b1c79f5d090a0daf526fd65d859d	43.55%	Heodo
2020-10-21	FILE_IPK_100120_MKE_102120.doc	doc	6eb67022c07e3f32436afc6e89eddb132a4c5d34d733c824ab3dabf51b7c712a	39.62%	Heodo
2020-10-21	80122885705195646655.doc	doc	7b59e4314d2b1bbefd045815d54be5bd19315bcd13e3de6816a36bfd0930e032	39.62%	Heodo
2020-10-21	QC3567068955TR.doc	doc	a78451771b5a8e66fd912d10f9b621e52239473334785ec68755db5e60594ecb	40.32%	Heodo
2020-10-21	FG_PO_10212020EX.doc	doc	583a7bdb6f07cd4359433a437ffcb7f9dbe1ed88b0a51acfe8ebd88294c940d4	38.33%	Heodo
2020-10-20	PO_10212020EX.doc	doc	4ca0b870975a5eb49d50074ff6d1f7b8481ae723a8aef2ff922accd28ed9a96d	41.38%	Heodo
2020-10-20	BAL_CVZ_100120_GNH_102120.doc	doc	8cadf5fc31643a1acc9b991d110e039e7e0520e94783c61d9caf5ccb2481915e	44.64%	Heodo
2020-10-20	INV_PO_10202020EX.doc	doc	ddfed25e7057b0ce36b9d4e9543d67b6533c84e1dd80a99777a26a0841ecc6c2	37.70%	Heodo
2020-10-20	X_41721011870377.doc	doc	8c612654ee12c90cf40bbca45253b76bdb0f372fcdacde4ad9e56d6a9b2d7d51	n/a	Heodo
2020-10-20	INV_2846909015.doc	doc	7662b0553d21014cf864eda278f0660d88df84a5d5be9258f2b862fb35e96c03	46.67%	Heodo
2020-10-20	REP_53120218.doc	doc	e75423a49a99ba135e99625ee8258aafeae5055d75eb6cc6e821a4e30358aab5	52.54%	Heodo
2020-10-20	73554461691670578364462.doc	doc	79121c5e523eeef2ed23da5881213eaca54c63d5733cc951ea4376e8cfbd41ff	50.82%	Heodo
2020-10-20	BAL_PO_10202020EX.doc	doc	592e1b94138444f3b8002612cef1322999a466e791c4c85b060cfdab8880a0bf	n/a	Heodo
2020-10-20	E_XP9056071512NK.doc	doc	3daca8d729c038fedec6902fd156b95c3491e8c07c72d47d27352deed9b5f97b	49.06%	Heodo
2020-10-20	INV_XG1120351807HT.doc	doc	49795d33d7c679a6a191590c742647402c2dcc89598c51f466f5e7a50d64f027	50.00%	Heodo
2020-10-20	BAL_PO_10202020EX.doc	doc	59b11da7af351898590c99795dabaa6165941fec5c5e377a4b8edab164b057dd	48.33%	Heodo
2020-10-20	INV_PO_10202020EX.doc	doc	731f9c60c47914b2dcc22536d709f5bf0aae0176c27bde61e5428e9a1afdc602	n/a	Heodo
2020-10-20	BAL_EW7228711597DW.doc	doc	31bf76bf160a14a606a6e20aeadfc5d32e5fd27d2cb375f7a2db68431d28e2fa	50.82%	Heodo
2020-10-20	OA9693033042PY.doc	doc	8bf073f99d2eaf5d61ab0aff7e4d8c764fdc59a98d011f9f0f45619b079fa2ac	50.00%	Heodo
2020-10-20	INV_MG0747441013YN.doc	doc	7a8552fd14f7e00f5b7ad3777e3b5c23f4b711495987f6103517d6428bc72c5f	n/a	Heodo
2020-10-20	DOC_06517522.doc	doc	55eab0dcfdc8ec941e8f44201bb5b1f6ff71cee7e07470e6ba65e8e318c35db4	50.94%	Heodo
2020-10-20	RUB_100120_XGD_102020.doc	doc	5c2800e73f66d8ffd5060d01074dd76a5f63dfd7ef6bd2c73b63bccb6fddf9bf	50.00%	Heodo
2020-10-20	PO_10202020EX.doc	doc	43daabd9b8ed1b9583cd3f14a3817f29bfbc447f9e0fbb513884fc702d0103d7	48.39%	Heodo
2020-10-20	FILE_XB9868934300ZV.doc	doc	a0e469d08ee726ce9fae3096bae0d3140afb1489feba6034d9eb67e59f84b1c2	48.39%	Heodo
2020-10-20	73749169418719516032.doc	doc	6fbded5702d0539f9849e8daf7a3c5d017e03faefa23d711bb82b15c7250ad8f	48.15%	Heodo
2020-10-20	SJDU5XMSIEQ6FPY.doc	doc	8750e31efa6cbb4e2c580cf4368c62b9a3ed4a1dac4135dc6ec05d91e1d7b1f1	n/a	Heodo
2020-10-20	FOZ_FB4179670957BM.doc	doc	a5ec53f9d42c76a94d7761a9c4f23cad9c963c51bf30a3edff8e964caaec4ff7	47.54%	Heodo
2020-10-20	ZR0644368006MI.doc	doc	af4cc06abbc809d10b17b2ca3f1a49333e04f48c1cbdf3d439985b7c4350ccb3	49.18%	Heodo
2020-10-20	BAL_80599621.doc	doc	b115c55302deeae4e7e088c8dd801349c25089e867dc300251bb75936f96260f	43.33%	Heodo
2020-10-20	FILE_OVP_100120_RDP_102020.doc	doc	7c97c02470de9409781c5d2124456af10eee6ca92664eccddf2ad51c9e729f33	43.33%	Heodo
2020-10-20	H_8W79YW89KXFOR09H.doc	doc	8337cfc31ce0d2a11afe2ee6a21927a95783115eb07c10ad21f4f015338fc7d5	45.00%	Heodo
2020-10-20	SHAP_MZ0296287567UA.doc	doc	bcfc76295fd5ab5b017402035d604facabb641cb2db84dbabc36923bc8b576f8	n/a	Heodo
2020-10-20	FILE_OA6454880136QE.doc	doc	ef9b5567f4d0522bdc9c446cfe86db8daf0e6c6a16d48cde2691b1f1a10b6d41	n/a	Heodo
2020-10-20	PO_10202020EX.doc	doc	44323308399663fcb908e6e32d51a26fda5bea8ff52732f3987b07c6d941fa96	n/a	Heodo
2020-10-19	BAL_78486184.doc	doc	fcee7dbc5b468506c17395baa69a4ecf7efc61dc1994fc1f563c27cdd9792cd8	37.10%	Heodo
2020-10-19	A_NWR_100120_IMO_102020.doc	doc	319f3bc0835158bc9ec5a351ae5e72d6f1e9f12a173caa968e5554716b39dd71	40.32%	Heodo
2020-10-19	REP_PO_10202020EX.doc	doc	30152a6c0f59f8968dcc935f1384a25fcb1e25cd3467f63e7ce6412931166d02	n/a	Heodo
2020-10-19	INV_13198889.doc	doc	c14feaadd5eecb3d93956659fc4ce80f6896577e1b166a134ddcc94309320623	n/a	Heodo
2020-10-19	FILE_AZ4593476317AN.doc	doc	1f5cb6e130ec0617eedc02d8554908a959a996089632142459c54f854cc52e16	37.10%	Heodo
2020-10-19	BAL_DCX_100120_RLZ_102020.doc	doc	5a3a9a56661d12f1650cebe5f4a3cab2135efc8c3113959a28415186f0ec7148	n/a	Heodo
2020-10-19	DOC_FN1873214117BM.doc	doc	9a1400c87eb903c4fa8bf92ef429307203a804d6e4a589f6472ea7b00c4b75fd	n/a	Heodo
2020-10-19	MD6898516205NI.doc	doc	9f5fdb91a1f42a4310ae1270fd63e6cbf01bdfc5e68cf151a33907377c25597f	37.10%	Heodo
2020-10-19	K_3404950464337281444042216.doc	doc	f3534f5aeaff350f232360f9ef4a823ce2730f82a38e507da056e0b4679ab505	36.07%	Heodo
2020-10-19	SHOT_PO_10192020EX.doc	doc	ed3e3b72dfeedf40a774a601226f1b8fc1ce241bbda7ca9efffda0257c40c766	n/a	Heodo
2020-10-19	REP_872984151.doc	doc	002dba704064560393050b2b0a57a8a23d197d9cdd673263031bd0b27efda0f1	35.00%	Heodo
2020-10-19	PO_10192020EX.doc	doc	0ea679788d2585f17ea28cf1aa4db04247858e6975b9f6529e1be13e205b5665	37.10%	Heodo
2020-10-19	INV_27800073.doc	doc	6c67c435c6894c0ec992d34794f68a497c5c55778a4ea811b322b9c1f539841b	n/a	Heodo
2020-10-19	FILE_PO_10192020EX.doc	doc	cddaf70d5e1afb6707dc5113f508919266360889e2b09df2f46916eb432f58ee	37.10%	Heodo
2020-10-19	KI1251978184IF.doc	doc	01fef30b1519a4eaa558839ae9d4905b10f002571d44f140afb7fe2850c6fc20	33.87%	Heodo